论文信息 - Secure Web Service Composition with Untrusted Broker

Secure Web Service Composition with Untrusted Broker

Composite web services are usually coordinated according to a workflow, composed by several activities, each of which carried out by a service. A way to coordinate this cooperation is orchestration, which implies that the workflow underlying the composite web service is processed by a broker hosting a workflow engine (e.g., BPEL engine). According to the orchestration paradigm, the broker coordinates the invocation of services involved in the composition by passing the needed parameters. In general, all previous proposals for the service orchestration model consider the broker as a trusted entity. As such, they never payed attention to the fact that the broker is able to access several pieces of sensitive data. We believe there is the need to protect them against improper access and usage from partner services as well as the broker. To cope with these issues, in this paper, we propose a protocol based on a selective encryption able to ensure that both the broker and service partners can access only the information needed to fulfill their activities.

Barbara Carminati | Elena Ferrari | Ngoc Hong Tran

[1] Shweta Shinde,et al. AUTOCRYPT: enabling homomorphic computation on servers to protect sensitive web content , 2013, CCS.

[2] Henk C. A. van Tilborg,et al. Encyclopedia of Cryptography and Security, 2nd Ed , 2005 .

[3] Valérie Issarny,et al. QoS Composition and Analysis in Reconfigurable Web Services Choreographies , 2013, 2013 IEEE 20th International Conference on Web Services.

[4] Marwa F Mohamed,et al. A study of an adaptive replication framework for orchestrated composite web services , 2013, SpringerPlus.

[5] Ravi Khadka,et al. Model-Driven Development of Service Compositions: Transformation from Service Choreography to Service Orchestrations , 2011 .

[6] Partha S. Roop,et al. Web Service Choreography: Unanimous Handling of Control and Data , 2013, Int. J. Softw. Informatics.

[7] Sunil Chandra,et al. Decentralized orchestration of composite web services , 2004, WWW Alt. '04.

[8] Ariel J. Feldman,et al. SPORC: Group Collaboration using Untrusted Cloud Resources , 2010, OSDI.

[9] Ronald L. Rivest,et al. ON DATA BANKS AND PRIVACY HOMOMORPHISMS , 1978 .

[10] Stelvio Cimato,et al. Encyclopedia of Cryptography and Security , 2005 .